Today we have implemented a feature that will allow users of the Special and Corporative plans of our platform to receive the vulnerabilities found by Nuclei before anyone else, the feature will be called Smart Nuclei Alerts (SNA). For this we have developed an algorithm that is responsible for reviewing the Nuclei tool scan in real-time and in case vulnerabilities have been found, the file will be sent to the user in advance before the final results of the scan, but in addition to that, Nuclei scanning priority has been prioritized 4 levels in the process. Before this change, the process was carried out as follows:
From now on the process is:
Additionally, the SNAs are handled in a separate thread from the main program, so that they will not cause locks or affect the main thread in the event of a problem.
Important Note: the feature is only available for users who have set an email address in their configuration file. The 26 Jun 2021 was added additional support for SNA through webhooks setting the smart_alerts_webhook
variable in the user’s configuration file. Discord and Slack are supported.
We hope you enjoy it! If you have any questions or ideas Email us, send us a Twitter DM, or chat with us on Discord. Check out our Monitoring and vulnerability discovery service.
Regards,
Findomain Team